Excerpt from BleepingComputer Article, Published on Aug 28, 2024.
Young Consulting, now known as Connexure, has begun notifying 954,177 individuals that their personal data was exposed in a BlackSuit ransomware attack on April 10, 2024. The Atlanta-based software solutions provider, which specializes in the employer stop-loss insurance market, discovered the breach three days after it occurred when attackers encrypted their systems. The investigation revealed that sensitive data, including full names, Social Security numbers, dates of birth, and insurance claim information, had been compromised.
The stolen data has already been leaked by the BlackSuit ransomware group on their darknet extortion portal, emphasizing the urgency for affected individuals to take advantage of the 12-month complimentary credit monitoring service offered by Young Consulting through Cyberscout. This service must be claimed by the end of November 2024. Those impacted should remain vigilant for potential phishing scams and fraudulent activities as a result of the breach.
BlackSuit, a ransomware group recently identified as a rebrand of Royal ransomware, claimed responsibility for the attack on Young Consulting on May 7. After unsuccessful extortion attempts, they leaked not only the personal data but also sensitive business documents, including contracts, financial audits, and employee records, far beyond what the company disclosed in its notifications.
This breach underscores the persistent and evolving threat of ransomware attacks, particularly from groups like BlackSuit, which has caused significant financial damage across American organizations, including the CDK Global outage. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have reported that BlackSuit has demanded over $500 million in ransom over the last two years. The incident serves as a stark reminder of the critical need for robust cybersecurity measures to protect sensitive data.
